Information Security

**Details**:
**Reference number**:

- 426531

**Salary**:

- £44,355 - £45,065
- A Civil Service Pension with an employer contribution of 28.97%

GBP

**Job grade**:

- Higher Executive Officer

**Contract type**:

- Permanent

**Business area**:

- DWP - Finance - Security, Internal Assurance

**Type of role**:

- Internal Audit
Security

**Working pattern**:

- Flexible working, Full-time, Job share, Part-time

**Number of jobs available**:

- 1

**Contents**:

- Location
- About the job
- Benefits
- Things you need to know

**Location**:

- London

**About the job**:
**Job summary**:
We are seeking a highly skilled and security-focused professional to join our Operational Capability (OC) Team as an Information Security and Monitoring Specialist.

In this role, you will support the detection and investigation of security incidents across the organisation, using advanced monitoring tools and SIEM- Security Information and Event Management systems. You will analyse alerts, identify threats, and work with internal and external stakeholders to ensure timely and effective responses to threats.

**Job description**:
You will work as a member of the OC Team in the Department's Cyber Resilience Centre (CRC), at the forefront of detecting and investigating potential security threats across CRC. Your primary focus will be on identifying indicators of compromise and malicious activity, conducting in-depth analysis of system alerts and logs, and ensuring swift, effective responses to emerging risks.

You will work closely with stakeholders across CRC and the wider security community to coordinate responses, escalate incidents when necessary, and support investigations with clear, actionable intelligence. Your experience in Security Information and Event Management (SIEM) systems will be critical in driving informed decision-making.

You will also oversee local security officers, contribute to the development of monitoring capabilities, and support strategic workforce planning activities. This role requires a background in information security, incident response, and protective security practices, with the ability to operate discreetly and decisively in high-assurance environments.

**Person specification**:
**Key Responsibilities**
- Monitor and analyse system alerts and logs to detect suspicious or malicious activity.
- Conduct proactive threat hunting and incident investigations.
- Escalate and present potential incidents with comprehensive supporting evidence.
- Collaborate with internal teams and external partners to coordinate responses to threats.
- Take remedial actions following inappropriate internal behaviour or security breaches.
- Oversee and support Rosa Local Security Officers across UK hubs.
- Manage Rosa assets and act as Partner Security Officer, ensuring compliance and assurance.
- Coordinate secure handling of sensitive materials across CRC and authorised partners.
- Contribute to the development and continuous improvement of monitoring systems, processes, and playbooks.
- Produce workforce analysis for CRC Senior Leadership.
- Support workforce planning and strategic capability development alongside the Head of Operational Capability.
- Provide operational support and resilience to the team as needed.

**What We’re Looking For**

We’re seeking a highly motivated and experienced professional who can demonstrate:
**Essential Criteria**
- Experience in cyber security monitoring and incident response.
- Strong analytical skills with the ability to interpret complex data and logs.
- Experience in using SIEM tools and other security technologies.
- Excellent communication and stakeholder engagement skills.
- Ability to monitor, investigate and manage sensitive information with discretion.

**Desirable Criteria**
- Experience working in a government or regulated environment.
- Familiarity with confidential material handling and secure asset management.
- Experience of managing multiple priorities and responding flexibly and effectively to competing demands, balancing priorities accordingly.

**Behaviours**:
We'll assess you against these behaviours during the selection process:

- Communicating and Influencing
- Making Effective Decisions
- Leadership
- Changing and Improving

**Technical skills**:
We'll assess you against these technical skills during the selection process:

- Experience with SIEM tools to collect, analyse, and correlate security events.

**Benefits**:

- Alongside your salary of £44,355, Department for Work and Pensions contributes £12,849 towards you being a member of the Civil Service Defined Benefit Pension scheme. Find out what benefits a Civil Service Pension provides.

DWP have a broad benefits package built around your work-life balance which includes:

- Working patterns to support work/life balance such as job sharing, term-time working, flexi-time and compressed hours.
- Generous annual leave - at least 23 days on entry, increasing up to 30 days over time (pro-rata for part t